REMARKS 



This amendment is being filed in response to an Office Action mailed 02/01/2006, 
5 in which the Examiner said that claims 1-5 and 7-28 were pending but rejected. 
In this amendment, claims 1,13, and 19 are amended to overcome reasons for 
rejection given by the Examiner, while other reasons for rejections are traversed 
below. 

1 0 Claims Rejected under 35 USC §1 03 

In the above-mentioned Office Action, the Examiner said that claims 1-5, 7, 11- 
24, and 26-28 were rejected under 35 USC §1 03(a) as being unpatentable over 
U.S. Pat. No. 6,832,316 to Sibert, in view of U.S. Pat. No. 6,463,537 to Tello, and 
further in view of U.S. Pat. No. 6,507,91 1 to Langford. 

15 

The Applicants' invention provides a method for preventing the reading of 
information stored within a first computer system, especially on a hard drive of 
the first computer system, in a second computer system, so that data cannot be 
stolen from the first computer system by removing the storage means, such as a 

20 hard disk drive, from the first computer system and reading the data. Since it is 
assumed that such removal of a storage device from the first computer system 
would occur with the first computer system turned off, the method of the invention 
provides encryption when the computer system is turned off and decryption when 
it is turned on. On the other hand, Sibert describes a method for integrating 

25 message authentication and decryption, with intermediate internal states of the 
decryption operation being used to detect manipulation of the encrypted data. 
Thus, the method of Sibert is applied to messages received by a computing 
system, not to data stored within the computing system when it is turned off. 

30 The Applicants' invention provides a method for securing a large amount of data, 
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stored within a hard disk drive medium or on a removable computer readable 
medium, by encrypting a small amount of data within a data structure including 
information locating the various data records on the medium. This method 
avoids a need to encrypt and subsequently decrypt all of the data to be 
5 protected. On the other hand, the method of Sibert requires that all of the data to 
be protected is encrypted and subsequently decrypted, as described, for 
example, column 3, lines 8-12, 20-23, and column 5, lines 12-17. 

Tello describes a personalized 1 computer with a unique encrypted digital 
10 signature which will not boot up or recognize any data storage or communication 
peripheral device without a matching 'personalized' smart card containing a 
complimentary encrypted digital signature, as described in the Abstract. 

Langford describes a data deletion system and method providing a system 
15 invoked deletion process that modifies the desired data to be deleted. 

Regarding claim 1 and the teachings of Sibert, the Examiner further indicated 
that Sibert discloses a method providing security for a plurality of data records 
stored on a computer readable medium within a computer system, wherein said 

20 computer readable medium additionally stores a first data structure, starting at a 
first location within said computer readable medium, locating data records in said 
plurality thereof, said method being a decryption subroutine executed as said 
computing system is being initialized, said decryption subroutine includes 
determining that electrical power has been turned on in said computing system, 

25 reading said encrypted version of said first data structure from said nonvolatile 
storage, decrypting said encrypted version of said first data structure to form said 
first data structure (see column 6 lines 55-67) and a method for encrypting (see 
column 5 lines 41-67). 

30 Regarding the above statement, the Applicants respectfully submit that, as 
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described in claim 1 of the Applicants' invention, the first data structure must 
locate data records in the plurality of data records that are stored on the 
computer readable medium and for which security is provided by the method. 
On the other hand, Sibert describes, in column 6, lines 55-67, an embodiment in 
5 which decoding logic is used at system start-up to decrypt and validate system 
control programs to be operable to initialize and control the operation of the 
system 42. The system 42 can then be used to decrypt data. Thus, there is no 
indication that the data itself is decrypted in the method of Sibert at system start- 
up, or that it is even available for decryption at that time. There is no indication 
1 0 that the system of Sibert decrypts a data structure locating data records within 
the data at that time or at any other time. 

Furthermore, regarding the above statement, the applicants note that the text 
cited by the Examiner for encrypting, column 5, lines 41-67, merely indicates that 
15 the system includes an encoding system, described in exemplary detail, for 
encoding messages or data and transmitting the resulting ciphertext to a 
recipient's system. Thus, there is no indication that the system of Sibert 
decrypts a data structure locating data records. 

20 The above arguments regarding applying the teachings of Sibert to claim 1 were 
made in the Applicant's response mailed 01/12/2006, and are repeated herein 
because they are still considered to be valid. 

In a response to these arguments, within the Office Action mailed 02/07/2006, 
25 the Examiner said that the statement from column 6, lines 55-66 that "decoding 
logic is used at system start-up to decrypt and validate system control programs," 
clearly teaches the Applicants' claimed limitation of decrypting at start up, and 
that, with respect to argument that Sibert fails to disclose decrypting a data 
structure locating data records, the system control programs correspond to the 
30 claimed data structure, that these programs "initialize and control the operation of 



09/919,240 



[the] system," and therefore must have within them the location of the data used 
to initialize and control the systems. 

Regarding the above statement, the Applicants respectfully submit that the 
5 requirements of claim 1 deal with encrypting a data structure stored on the 
computer readable medium, with the data structure locating the data records 
being protected. This is done to keep someone from being able to read the data 
records after the hard file has been removed from the computer system. Instead 
of doing this, Sibert encrypts system control programs. For example, Sibert 

10 could encrypt programs used for DMA access to data stored in a computer 
readable medium, such as a hard disk drive or a floppy disk. Such programs do 
not include data locating individual data records on any disk drives. The 
encryption methods of Sibert would not impede an attempt to read the data 
records on the computer readable medium with the computer readable medium 

15 removed from the computer system and installed in another computer system. 
Thus, this significant feature of the Applicants' invention is in no way anticipated 
by the disclosure of Sibert. 

Thus, the Applicants respectfully submit that the Examiner erred in determining 
20 that the system control programs of Sibert must have within them the location of 
the data used to initialize and control the systems. 

The Examiner additionally said that Sibert fails to disclose the encryption 
subroutine include receiving a request to shut down said computing system, 
25 reading said first data structure from said computer readable medium, encrypting 
said first data structure to produce an encrypted version of said first data 
structure, using a public key encryption scheme and the encryption being done to 
prevent reading information stored in data records when the medium is removed 
from the system. 

30 
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Regarding Claim 1 and the teachings of Tello, the Examiner said that Tello 
teaches performing tasks at shut down (see column 14, lines 1-41) and public 
key encryption (see column 8 lines 34-40) and the encryption being done to 
prevent reading information stored in data records when the medium is removed 
5 from the system (see column 4 line 38 through column 5 line 14). 

Regarding this statement, the Applicants respectfully note that, according to the 
cited text in column 14, lines 1-41, the system of Tello includes a security engine 
microprocessor taking over control from the motherboard CPU to secure data 

10 with a modified BIOS by hiding all data storage devices and user selected 
peripheral devices upon system start up and shut down. Thus, the Examiner 
uses Tello only to indicate that something can happen during system shut down; 
there is no indication that data records locating data to be protected are being 
encrypted. This process of Tello does not involve any form of data encryption. 

15 In fact, Tello teaches against the Applicant's invention, indicating that data should 
be protected by hiding access to storage devices instead of by encrypting data 
records locating data files. The other text cited in Tello, column 8, lines 34-40, 
suggests the use of an encryption algorithm, such as an RSA algorithm, to 
encrypt selected data that is to be passed to or used by another computer. 

20 There is no reason or indication that such encryption should occur at system shut 
down. 

The above arguments regarding applying the teachings of Tello to claim 1 were 
made in the Applicant's response mailed 01/12/2006, and are repeated herein 
25 because they are still considered to be valid. 

In a response to these arguments, within the Office Action mailed 02/07/2006, 
the Examiner said that that, with respect to the Applicants' argument that Tello 
fails to disclose encryption occurring at shut down, in column 14 Tello discloses, 
30 "Hides all storage devices and other user selected peripheral data storage and 
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communication devices upon start up and shut down of the computer" and 
furthermore the disabling is done by using encryption as seen in column 14, lines 
34-41. The Examiner further said that, also in column 8, lines 34-40, 7e//o 
discloses that a public key algorithm is used for encrypting data that is used by 
5 computers, which enables the invention. 

In response to the above statement by the Examiner, the Applicants note that, 
while Tello hides storage devices and communication devices upon start up and 
shut down, there is no indication that the processes used involve encrypting a 

10 data structure locating data records during shut down within this process. In fact, 
it would appear that the process of hiding the storage devices during system 
shutdown would make it impossible, during system shutdown, to read the data 
structure locating data records, to encrypt the data structure, to delete the 
unencrypted version of the data structure, and to write the encrypted version of 

15 the data structure to the computer readable medium, as required by claim 1 
within the Applicants' invention. While 7e//o discloses providing means for 
encryption during the operation of the operation of the computer system, there is 
no reason to believe that such encryption would be applied to a data structure 
locating various data records, or that encryption could or would be used during 

20 system shutdown. 

Therefore, the Applicants respectfully submit that the Examiner erred in 
determining that the indication by Tello that storage devices and other user 
selected data storage and communication devices are hidden upon start up and 
25 shut down means that data, and in particular a data structure locating data 
records, would be encrypted upon system shut down. 

The Applicants further respectfully submit that the processes of Tello during 
system shut down are in no way equivalent to the processes of the Applicants' 
30 invention in that the hiding of storage devices during system start up and shut 
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down would have no effect on the reading of data records from a computer 
readable medium that has been removed from the computer system, while the 
encryption of a data structure locating the data records during system shut down 
would prevent the data records from being read with the computer readable 
5 medium removed from the system. 

Regarding claim 1 and the teachings of Langford, this reference is used by 
the Examiner to describe a method of replacing data in a computer readable 
medium. Adding the teachings of Langford to those of Sibert and Tello does not 
10 overcome the deficiencies described above in describing the limitations of claim 
1. 

Regarding claim 1, in conclusion, for all the reasons described above, the 
Applicants respectfully submit that Sibert, Tello, and Langford, taken separately 

15 or in combination, fail to disclos, teach, or otherwise anticipate the requirements 
of claim 1 for a method, wherein 

said method comprises an encryption subroutine executed as said 
computing system is being shut down and a decryption subroutine executed as 
said computing system is being initialized, 

20 said encryption subroutine includes receiving a request to shut down said 

computing system, reading said first data structure from said computer readable 
medium, encrypting said first data structure with a public key of said computing 
system to produce an encrypted version of said first data structure that can only 
be decrypted with a private key of said computing system to prevent reading 

25 information stored in said data records with said computer readable medium 

removed from said computing system, deleting said first data structure from said 
computer readable medium, and storing said encrypted version of said first data 
structure in nonvolatile storage, starting at a second location within said 
nonvolatile storage, and 

30 said decryption subroutine includes determining that electrical power has 
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been turned on in said computing system, reading said encrypted version of said 
first data structure from said nonvolatile storage, decrypting said encrypted 
version of said first data structure with said private key of said computing system 
to form said first data structure, and writing said first data structure to said 
5 computer readable medium, starting at said first location. 

For all the above reasons, the Applicants respectfully submit that claim 1 is 
patentable under 35 USC §1 03(a) over Sibert in view of Tello and further in view 
of Langford. 

Regarding claims 2-5, 7, 11, and 12 since these dependent claims merely add 
limitations to claim 1, the Applicants respectfully submit that, for reasons 
described above regarding claim 1, claims 2-5, 7, 11 and 12 are patentable 
under 35 USC §1 03(a) over Sibert in view of 7e//o and further in view of 
Langford. 

Regarding claims 13 and 19, in the above-mentioned Office Action, the 
Examiner said that the modified Sibert, Tello and Langford system discloses a 
method providing security for a plurality of data records stored on a computer 
20 readable medium within a computing system, wherein said computer medium 
additionally stores a first data structure starting at a first location within said 
removable computer readable medium, locating data records in said plurality 
thereof, said method comprises an encryption subroutine executed to encrypt 
said first data structure and a decryption subroutine subsequently executed to 
25 decrypt an encrypted version of said first data structure, said encryption 
subroutine includes reading said first data structure from said computer readable 
medium, encrypting said first data structure within a cryptographic processor in 
said computing system using an encryption key to produce an encrypted version 
of said first data structure, deleting said first data structure from said computer 
30 readable medium, and storing said encrypted version of said first data structure 
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in nonvolatile storage, starting at a second location within said nonvolatile 
storage, and said decryption subroutine includes reading said encrypted version 
of said first data structure from said nonvolatile storage, decrypting said 
encrypted version of said first data structure within said cryptographic processor 
5 in said computing system using a decryption key generated from data stored in 
secure storage accessed by said cryptographic processor to form said first data 
structure, and writing said data structure to said computer readable medium, 
starting at said first location (see rejection of claim 5) with the prevention of 
reading records when the medium is removed from the system (see Tello as 
10 applied to claim 1). 

Regarding the above statement by the Examiner, the Applicant respectfully 
submits that, generally for reasons described above in regard to the rejection of 
claim 1, Sibert, Tello and Langford, taken separately or in combination, fail to 

15 describe the requirements of claims 13 and 19 for a method or a computing 
system wherein said encryption subroutine includes reading said first data 
structure from said computer readable medium, encrypting said first data 
structure within a cryptographic processor in said computing system using an 
encryption key to produce an encrypted version of said first data structure, 

20 deleting said first data structure from said computer readable medium, and 
storing said encrypted version of said first data structure in nonvolatile storage, 
starting at a second location within said nonvolatile storage, and said decryption 
subroutine includes reading said encrypted version of said first data structure 
from said nonvolatile storage, decrypting said encrypted version of said first data 

25 structure within said cryptographic processor. 

The Applicants respectfully submit that, as described in detail above regarding 
the rejection of claim 1, Sibert, Tello, and Langford do not describe the 
encryption and subsequent decryption of a data structure describing the locations 
30 of data records on the computer readable medium being protected, with Sibert 
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instead teaching that the entirety of the data to be protected should be encrypted 
and decrypted, and with Tello teaching that peripheral devices should be enabled 
and disabled at system start up and shut down. The Applicants further summit 
that these cited references fail to describe, teach, or otherwise anticipate the 
5 requirements of claim 13 for the encryption subroutine to encrypt said first data 
structure and for a decryption subroutine subsequently executed to decrypt said 
encrypted version of said first data structure, and for these encryption and 
decryption processes to within a cryptographic processor, wherein said first data 
structure locates data records in a plurality of data records stored on a computer 
1 0 readable medium. 

Therefore, the Applicants respectfully submit that claims 13 and 19 are 
patentable under 35 USC § 103(a) over Sibert in view of Tello and further in view 
of Langford. 

15 

Regarding claim 14, the Applicants respectfully submit that Sibert, Tello, and 
Langford, taken separately or in combination, fail to describe, teach, or otherwise 
anticipate the requirement of claim 14 for the encryption program to be executed 
in response to receiving a request to shut down the computing system and for 

20 the encryption routine to be executed in response to electrical power being 
turned on within the computing system. Langford does not describe encryption 
and decryption occurring in response to the system being shut down or turned 
on. Tello describes peripheral devices being disabled and enabled as the 
system is shut down or turned on. Sibert describes system control programs, not 

25 a data structure locating data records, being decrypted when the system is 
turned on. There is no indication that the control programs are encrypted when 
the system is turned off; they may be stored in an encrypted form whether or not 
the system is running. 

30 Therefore, and additionally because claim 14 merely adds these limitations to 
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claim 13, which is believed to be patentable for reasons described above, the 
Applicants respectfully submit that claim 14 is patentable under 35 USC §1 03(a) 
over Sibert in view of Tello and further in view of Langford, 

5 Regarding claims 15-18, the Applicants respectfully submit that, since these 
claims merely add limitations to claim 13, for reasons described above regarding 
claim 13, claims 15-18 are patentable under 35 USC §1 03(a) over Sibert in view 
of Tello and further in view of Langford. 

10 Regarding claims 20-24, the Applicants respectfully submit that, since these 
claims merely add limitations to claim 19, for reasons described above regarding 
claim 19, claims 20-24 are patentable under 35 USC §1 03(a) over Sibert in view 
of Tello and further in view of Langford. 

15 Regarding claim 26, the Applicants respectfully submit that Sibert, Tello, and 
Langford, taken separately or in combination, fail to describe, teach, or otherwise 
anticipate the requirement of claim 26 for encrypting said first data structure to 
form an encrypted version of said first data structure without encrypting said 
plurality of data records as said computing system is being shut down, and for 

20 decrypting said encrypted version of said first data structure as said computing 
system is being initialized. As described in detail above regarding the rejection of 
claim 1 , the cited references do not anticipate encrypting the first data structure 
as the computing system is being shut down or for performing the required 
decryption as the system is being initialized. 

25 

Furthermore, the Applicants respectfully submit that there is nothing in the cited 
references indicating that the data structure locating the data records is 
encrypted without encrypting the data records themselves. 

30 Therefore, the Applicants respectfully submit that claim 26 is patentable under 35 
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(JSC §1 03(a) over Sibert in view of Tello and further in view of Langford, 



Regarding claims 27 and 28, the Applicants respectfully submit that, since 
these claims merely add limitations to claim 26, for reasons described above 
5 regarding claim 26, claims 27 and 28 are patentable under 35 USC §1 03(a) over 
Sibert in view of Tello and further in view of Langford. 

Regarding claims 8, 9, and 25, the Examiner indicated that these claims were 
rejected under 33 USC §1 03(a) as being unpatentable over a modified Sibert, 

10 Tello, and Langford system, further in view of U.S. Pat. No. 5,544,356 to 
Robinson et al., with Robinson et ai teaching a boot record describing the file 
allocation table. Nevertheless, the Applicants respectfully submit that adding the 
teachings of Robinson et al does not provide a description of the encryption and 
subsequent decryption of a data structure locating various data records, with 

15 such a description being missing from the disclosure of the other cited patents. 
Therefore, and additionally because claims 8 and 9 merely add limitations to 
claim 1, and further because claim 25 merely adds limitations to claim 19, the 
Applicants respectfully submit that claims 8, 10, and 25 are patentable under 35 
USC §1 03(a) over Sibert in view of 7e//o and further in view of Langford and 

20 additionally in view of Robinson et ai 

Regarding claims 8, 10, and 25, the Examiner indicated that these claims were 
rejected under 33 USC §1 03(a) as being unpatentable over a modified Sibert, 
Tello, and Langford system, further in view of U.S. Pat. No. 6,070,174 to Starek 

25 et al., with Starek et ai describing an array of file records in a master file table of 
an NTFS file, and a second data structure including metafile data in the master 
file table. Nevertheless, the Applicants respectfully submit that adding the 
teachings of Starek et al does not provide a description of the encryption and 
subsequent decryption of a data structure locating various data records, with 

30 such a description being missing from the disclosure of the other cited patents. 
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Therefore, and additionally because claims 8 and 10 merely add limitations to 
claim 1, and further because claim 25 merely adds limitations to claim 19, the 
Applicants respectfully submit that claims 8, 10, and 25 are patentable under 35 
USC §1 03(a) over Sibert in view of 7e//o and further in view of Langford and 
5 additionally in view of Starek et al. 

Regarding claims 1-5 and 7-28, the Examiner additionally indicated that claims 
1-5 and 7-28, were rejected as previously described but in view of 
JP2001202167A, which discloses a control method for a computer, involving the 

10 encrypting and decoding data in memory based on power on or off in the power 
supply. However, the Applicants respectfully submit that this Japanese patent 
teaches that the entire contents of the memory should be encrypted and 
decrypted. Again, there is no teaching of the encryption and decryption only of a 
data structure describing the location of data records to be protected. This 

15 difference between the prior art and the Applicants invention is particularly 
significant, because, while JP2001202167A requires the encryption and 
decryption of a vast amount of data stored, for example, on a hard disk drive, the 
method of the Applicants' invention requires the encryption and decryption of a 
much smaller quantity of data, making it feasible to provide the encryption and 

20 decryption processes whenever the computing system is turned on and off. This 
is a key to making the process of the Applicants invention practical. 

In the Office Action of 02/07/2006, the Examiner said that, with respect to the 
Applicants' argument that the Japanese reference encrypts all of the data on a 
25 hard drive, not just a data structure as in the Applicants' claims, if the Japanese 
reference encrypts all of the data on the hard drive it would also therefore encrypt 
any data structures pointing to locations of data records on the hard drive. 

In the present amendment, independent claims 1, 13, and 19 are amended to 
30 include a requirement that the encryption routine encrypts the first data structure, 
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which locates data records in the plurality of data records, without encrypting the 
plurality of data records. Support for this modification is found in the application 
as originally filed on page 9, lines 27-29, and on pages 18-21. 

5 Because claims 2-5 and 7-12 depend upon the independent claim 1, adding this 
limitation to claim 1 causes its incorporation within claims 2-5 and 7-12. Because 
claims 14-18 depend upon the independent claim 13, adding this limitation to 
claim 13 causes its incorporation within claims 14-18. Because claims 20-25 
depend upon the independent claim 19, adding this limitation to claim 19 causes 

10 its incorporation within claims 20-25. The independent claim 26, as previously 

presented, already had a limitation requiring that the method encrypts the first v 
data structure including data locating the data records without encrypting the 
data records themselves. Since claims 27 and 28 merely add their requirement 
to claim 26, this limitation is incorporated within claims 27 and 28. Thus, with the 

15 present amendment, claims 1-5 and 7-28 each include a requirement that the 
data structure locating the data records must be encrypted without encrypting the 
data records themselves. 

The Applicants additionally respectfully submit that the method of 
20 JP2001202167A is merely applied to a volatile memory within a notebook 
computer, since power is left on the volatile memory when the main power is shut 
off. This reference does not describe the method as being applied to a non- 
volatile memory, such as a hard disk. 

For the reasons described in detail above, the Applicants respectfully submit that 
25 none of the prior art cited by the Examiner teaches or otherwise anticipates the 
requirement of each claim 1-5 and 7-28 for a data structure locating data records 
to be encrypted without encrypting the data records themselves. Therefore, the 
Applicants respectfully submit that claims 1-5 and 7-28 are patentable under 35 
USC §103(a) as described above and further in view of JP2001202167A. 

30 
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Conclusions 

The Applicants respectfully submit that the application, including claims 1-28, is 
now in condition for allowance, and that action is earnestly requested, with 
reconsideration and withdrawal of all reasons given for rejections. 

5 

Respectfully submitted, 




10 



Ronald V. Davidge 
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